119 matches found
CVE-2017-0638
A remote code execution vulnerability in System UI component could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated as High because it is a remote arbitrary code execution in an unprivileged process...
CVE-2017-0638
A remote code execution vulnerability in System UI component could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated as High because it is a remote arbitrary code execution in an unprivileged process...
Remote code execution
A remote code execution vulnerability in System UI component could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated as High because it is a remote arbitrary code execution in an unprivileged process...
CVE-2017-0638
Technical details regarding CVE-2017-0638 are not publicly provided in the connected documents. Monitor for updates.
CVE-2017-0638
A remote code execution vulnerability in System UI component could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated as High because it is a remote arbitrary code execution in an unprivileged process...
Google Android System UI Remote Code Execution Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA for short. System UI is the system interface that comes with Android. A remote code execution vulnerability exists in System UI in Android versions 7.1.1 and 7.1.2. A remote attack...
Android Power Icon Display Exception Vulnerability
Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Consortium. A display anomaly vulnerability exists in the Android power icon. The vulnerability is caused by the system-level Intent mechanism "com.android.systemui.BATTERYLEVELTEST" in...
The vulnerability of the Android operating system allows a hacker to circumvent existing policies regarding user permissions and interaction requirements.
The vulnerability of the System UI component in the Android operating system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to bypass existing user permission policies and interaction requirements...
CVE-2017-0492
The CVE-2017-0492 entry describes a local elevation-of-privilege issue in Android's System UI that allows a malicious local app to create a UI overlay covering the entire screen. Affected product/version: Android System UI on Android 7.1.1. Root cause: bypass of user interaction requirements enab...
Samsung Note Denial of Service Vulnerability
The Samsung Note is a smartphone released by the South Korean company Samsung. Samsung Note devices fail to properly handle exceptions, allowing remote attackers to exploit the vulnerability to build malicious apps that trigger systemUI crashes and denial of service...
UBUNTU-CVE-2016-6708
An elevation of privilege in the System UI in Android 7.0 before 2016-11-01 could enable a local malicious user to bypass the security prompt of your work profile in Multi-Window mode. This issue is rated as High because it is a local bypass of user interaction requirements for any developer or...
CVE-2016-6708
CVE-2016-6708 affects Android 7.0 System UI. It enables a local attacker to bypass the work-profile security prompt in Multi-Window mode, i.e., a local elevation of privilege without requiring user interaction. The issue is described as a local bypass of user interaction requirements and is categ...
CVE-2016-3886
systemui/statusbar/phone/QuickStatusBarHeader.java in the System UI Tuner in Android 7.0 before 2016-09-01 does not prevent tuner changes on the lockscreen, which allows physically proximate attackers to gain privileges by modifying a setting, aka internal bug 30107438...
Code injection
systemui/statusbar/phone/QuickStatusBarHeader.java in the System UI Tuner in Android 7.0 before 2016-09-01 does not prevent tuner changes on the lockscreen, which allows physically proximate attackers to gain privileges by modifying a setting, aka internal bug 30107438...
CVE-2016-3886
CVE-2016-3886 affects Android 7.0 System UI Tuner (systemui/statusbar/phone/QuickStatusBarHeader.java). The issue: the System UI Tuner on the lockscreen does not prevent tuner changes, enabling a physically proximate attacker to modify a setting and gain privileges. Root cause: ability to modify ...
CVE-2016-3886
systemui/statusbar/phone/QuickStatusBarHeader.java in the System UI Tuner in Android 7.0 before 2016-09-01 does not prevent tuner changes on the lockscreen, which allows physically proximate attackers to gain privileges by modifying a setting, aka internal bug 30107438...
Google Android Local Elevation of Privilege Vulnerability (CNVD-2016-07413)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A local elevation of privilege vulnerability exists in System UI Tuner in Android version 7.0. A local attacker can exploit this vulnerability to modify the protection settings of...
The vulnerability of the Android operating system, which allows a perpetrator to circumvent the restrictions of the DEVICE_POWER requirement.
The vulnerability of the packages/SystemUI/src/com/android/systemui/power/PowerNotificationWarnings.java file in the Android operating system is related to access control deficiencies. Exploiting this vulnerability could allow a malicious actor to circumvent the DEVICEPOWER requirement by sending...
Android System UI Denial of Service Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. system UI is the system interface that comes with Android. A denial of service vulnerability exists in System UI in Android. An attacker can exploit this vulnerability by using a...